In a statement released by the White House on March 21st, 2022, it started that the US Government is advising businesses to protect their organization from online threat actors immediately. This is mostly due to a rising level of concern around online attacks perpetuated from within Russia. The US Federal Government is launching an action plan around preventing cyber-attacks moving forward, and is advising private businesses in the US to do everything in their power to protect their own operations.
Their advice includes the following:
- Require Multi-Factor (2fA) for your organization: This helps prevent bad actors from gaining access to critical systems using a user’s credentials. 2FA can be implemented using a text code, MFA token, Authenticator application, or various other methods.
- Deploy tools to protect your devices: These tools can investigate logs, alert team members to any potential threats, and protect local devices.
- Work with professionals: Ensure all systems are up-to-date, protected, and passwords are secure with industry standards and best practices.
- Make sure backups are working: Verify they are up and running and that they are off site, beyond the reach of attackers.
- Test your disaster recovery: Restore files back to your office, or digitally, to ensure your business can stay up and running in the worst case scenario.
- Protect files: Encrypt all information so even if it is stolen, it can’t be used.
- Train and educate all of your employees: Make sure they know what to look for in a malicious email, and know how and who to report an incident to.
It is also advised that software and tech businesses strengthen the way they write their code. They need to make sure their clients are protected, and they need to require a stronger level of overall protections to stay safe.